Difference between revisions 700747558 and 724513535 on enwiki

[[File:Risk Management Elements.jpg|thumb|Plan-Do-Check-Act Cycle]]
[[File:Isms framework.jpg|thumb|ENISA: Risk Management and Isms activities]]
An '''information security management system'''<ref>{{cite web|title=Security management system’s usability key to easy adoption|url=http://www.sourcesecurity.com/news/articles/co-4108-ga.8554.html|publisher=sourcesecurity.com|accessdate=22 August 2013}}</ref>  (ISMS) is a set of policies concerned with [[information securi(contracted; show full)
* be a never ending process;

== Dynamic issues in ISMS ==
There are three main problems which lead to uncertainty in information security management systems (ISMS):<ref name= dynamic>{{cite journal|last=Abbas|first=Haider|author2=Magnusson, Christer |author3=Yngstrom, Louise |author4= Hemani, Ahmed |title=Addressing dynamic issues in information security management|journal=Information Management & Computer Security|date=1 January 2011|volume=19|issue=1|pages=5–24|doi=10.1108/09685221111115836
}}<!--|accessdate=26 October 2013}}--></ref> 
* '''Dynamically changing security requirements of an organization'''
Rapid technological development raises new security concerns for organizations. The existing security measures and requirements become obsolete as new vulnerabilities arise with the development in technology. To overcome this issue, the ISMS should organize and manage dynamically changing requirements and keep the system up-to-date.<ref name= dynamic/>
(contracted; show full)* [[Vulnerability (computing)]]
* [[WARP (information security)]]

== Notes and references ==
<references/>

{{Authority control}}
[[Category:Data security]]